Overview:

FortiSwitch Secure Access switches deliver outstanding security, performance and manageability for threat conscious small to mid-sized businesses, distributed enterprises and branch offices. Tightly integrated into the FortiGate® Network Security Platform, the FortiSwitch Secure Access switches can be managed directly from the familiar FortiGate interface. This single pane of glass management provides complete visibility and control of all users and devices on the network, regardless of how they connect.

When a device connects to a Secure Access Switch Ethernet port, it is first identified, and then the user is authenticated. Once authenticated, access to the network is granted based on pre-defined security policy from the FortiGate, ensuring secure network access across the enterprise, without impacting the user experience.

Secure Managed Switches for Wire Closet Installation

The FortiSwitch D-Series switches are ideal for the next generation applications, where increased productivity can be achieved through faster network access speeds via dedicated Gigabit Ethernet ports. With a compact 1RU form factor, these switches are ideally suited for high density enterprise or classroom wire closet installations, delivering a truly secure network access platform for wired Ethernet devices.

Simple Network Deployment and Compliance

The Power over Ethernet (PoE) capability enables simple installation of wireless Access Points and IP phones in the network, with power and data being delivered over the same network cable. There is no need to contract electricians to install power for your PoE capable devices anymore, reducing your overall network TCO.

By leveraging the FortiSwitch VLAN segmentation feature of the switches, enterprise networks can support the convergence of voice, data and wireless traffic onto a single network platform. FortiSwitch network segmentation can even be managed from the FortiGate interface, simplifying the process of meeting compliance requirements for data separation.

Ideal for converged network environments; enabling voice, data and wireless traffic to be delivered across a single network.

Key Features & Benefits

Single Management Framework

Reduces complexity and decreases management cost with network security functions managed through a single console.

Single Policy Provisioning

The same security policy can apply to a user or device regardless of how or where they connect to the network.Enables access to certain network ports based on the role of a user within the organization, such as in shared conference rooms or engineering facilities.

Centralized Authentication

All users are authenticated against the same user database, regardless of whether they connect to the wired or wireless network, including temporary guest users.

Role-Based Ports

Enables access to certain network ports based on the role of a user within the organization, such as in shared conference rooms or engineering facilities..

Capabilities: Fortilink Mode Vs. Standalone Mode:

FORTISWITCH D-SERIES

STANDALONE SWITCH

FORTILINK MODE (FORTIGATE)

Security

802.1x Port Authentication

Yes

Yes

MAC Address-Based Authentication

No

Yes

MAC Black/White Listing

No

Yes

Layer 3,4 Stateful Firewall to Control Access

No

Yes

TACACS+/RADIUS Admin Access

Yes

Yes

DHCP Relay/DHCP Snooping

No

Yes

Virtual Domain

No

Yes

Routing

Layer 3, Dynamic Routing

No

Yes

Inter-VLAN Routing

No

Yes

Policy-Based Routing

No

Yes

DNS Server

No

Yes

VLANs Supported

4K

1K

Management

Auto Discovery of Multiple Switches

1

16 (model dependent)

Software Upgrade of Switches

1 switch

Central upgrade of each switch

VLAN Configuration

1 switch

Central VLAN provisioning of entire switch network

Policy Control of Users and Devices

No

Yes

Syslog Collection

Yes

Yes (FortiGate syslog only)

Switch POE Control

Yes

Yes**

LAG support from FortiSwitch to FortiGate

Yes

Yes**

High Availability

Support for FortiGate in HA cluster

Yes

Yes**

UTM Features

Firewall

No

Yes

IPS, AV, Application Control

No

Yes

** enabled with FOS 5.4 release

FortiSwitch Deployment Example:

FortiLink Mode

The FortiSwitch Secure Access Switch series integrates directly into the FortiGate* Connected UTM, with switch administration and access
port security managed from the familiar FortiGate interface. Regardless of how users and devices connect to the network, you have
complete visibility and control over your network security and access through this single pane of glass, perfectly suited to threatconscious
organizations of any size.

* Selected models only

Standalone Mode

Virtualization and cloud computing have created dense high-bandwidth Ethernet networking requirements in the data center, pushing the
limits of existing data center switching. FortiSwitch Data Center switches meet these challenges by providing a high performance 10 or
40 GE capable switching platform, with a low Total Cost of Ownership. Ideal for Top of Rack server or firewall aggregation applications,
as well as enterprise network core or distribution deployments, these switches are purpose-built to meet the needs of today’s bandwidth
intensive environments.